Package: devscripts
Version: 2.13.5
Severity: grave
Tags: security
Justification: user security hole
If USCAN_EXCLUSION is enabled, uscan doesn't correctly handle filenames
containing whitespace. This can be abused my malicious upstream to
delete files of their choice. Proof of concept (that wi
This is an automated email from the git hooks/post-receive script.
mpitt pushed a commit to branch master
in repository devscripts.
commit 4a37da34231ccec8535bd1b16e650e1384870d45
Author: Martin Pitt
Date: Thu Dec 12 11:09:14 2013 +0100
autopkgtest: Add "allow-stderr" restriction to avoid
This is an automated email from the git hooks/post-receive script.
mpitt pushed a change to branch master
in repository devscripts.
from 0ff6d95 releasing devscripts 2.13.8
new 4a37da3 autopkgtest: Add "allow-stderr" restriction to avoid
failing tests because of the HTTP serve
Processing commands for cont...@bugs.debian.org:
> user debian-secur...@lists.debian.org
Setting user to debian-secur...@lists.debian.org (was car...@debian.org).
> usertags 732006 + tracked
Usertags were: tracked.
Usertags are now: tracked.
> retitle 732006 uscan: broken handling of filenames wit
